Network Access Control

I just recently completed my CCNA and im not sure about which CISCO certification to do next..should i do CCNP or CCSP..I hear CCSP has about 5 modules,when taking them is there a specific way im supposed to take them or can they just be taken random...

I have the following configuration on a 2950 Catalyst switchaaa new-modelaaa group server radius radServserver 10.1.9.100 auth-port 1645 acct-port 1813server 10.1.8.100 auth-port 1645 acct-port 1813!aaa authentication login default group radServ loca...

When entering devices/routers now we use ssh with aaa enabled on devices in our LAN. Now we have MS IAS server and now try to decide how to make better/safe authentication. Shall we use local username or use MS AD to authenticate device users. How to...

Hi,I have a 3005AC and an Active Directory 2003 domain. I can VPN in but it seems security credentials from the PC are not being sent over the VPN.For instance, when I try to go to one of our servers shares, I have to enter my domain username and pa...

I'm having issues authenticating (MS-PEAP) a user in a MS Domain/Active Directory on W2K or W2003. I have installed the latest remote agent and the ACS sees the agent. I can define a local user to the ACS and authenticate with no problems. However, I...

The standard radius can not meet my need,I must know some private properties ,and could you tell me ?Thank you very much!!!

HelloCould you tell me if its possible to do 802.1X authentication with LDAP server using PEAP MS-CHAP v2 (Machine autentication) ?in fact, with Windows external database, its work fine.We use only machine authentication with vlan assignement over PE...

After making AAA changes on the catalyst 3750 the key configuration part was missed and the login attempt on the switch is getting failed now. There are no logs in the "failed attempts" on the ACS. What is the solution now?

We currently have an ACS server on a flat AD domain. We will be migrating users over to a different heirarchical AD domain. We want to be able to have our users authenticate to the existing ACS server while the migration takes place, regardless if th...

I'm trying to establish a wireless setup with 113x APs, ACS 4.0, using built-in XP support for PEAP using MSCHAPv2. Initially users are defined locally in ACS, but longterm is linking user groups with MS AD domains.My ACS has a RapidSLL (Geotrust) tr...

Put in a new backup ACS server and the senior guy put in temp host address. Nowneed to change the temp host address to its permanent address but need a little clarification. Do you just change it in the Windows srvr 2003 tcp/ip stack or do you need ...

Adding Cisco IOS router to ACS Server

I'm planning the above on an SE 1112. I believe I've figured out the correct process from documentation but are there any gotchas anyone can warn me of?

I am attempting to allow vpn users to be alerted and change their passwords via their vpn client. So far this appears to work ok, except the alerting of upcoming expiration doesnt seem to work, I can change password via the client. Problem: Once I ad...

Hello,I will be setting up ACS Remote Agent for Windows, and have requested the necessary service accounts through our server team (CISCO workstation account and ACSuser domain user account). I have been advised that 'CISCO' may need to be changed, ...